-
Platform
OVERVIEW
Capabilities
-
Solutions
USE CASES
-
Cyber Risk Hub
LIBRARY
-
Company
GET TO KNOW US
-
Pricing
Orani has years of experience in marketing and content creation. He works to help security professionals learn about best practices for defending their enterprises in a rapidly evolving cybersecurity landscape.
SolarWinds, known for the significant security breach of its Orion platform in 2020, has recently addressed five vulnerabilities in its Access Rights Manager (ARM) solution. This proactive measure aims to secure the platform against similar threats and safeguard user data across various agencies and corporations. Here’s what you need to know about the latest SolarWinds… Continue reading SolarWinds exposed again: Take action now
CVE-2023-40547 has raised concerns due to its potential to allow attackers to install persistent bootkits on a wide range of Linux distributions. In this blog, we’ll delve into the details of CVE-2023-40547, explore its implications for Linux users, and outline steps to mitigate the risk it poses. Here’s what you need to know: What is… Continue reading How to fix CVE-2023-40547 in Linux
UPDATE: As of 11th March 2024, CISA has confirmed breaches of its systems through Ivanti products. Read more >> CISA has issued emergency directives to fix two significant vulnerabilities in Ivanti products: CVE-2023-46805 and CVE-2024-21887. These vulnerabilities present critical challenges to network security and have sparked concerns across various sectors. But as the cyber security… Continue reading CISA’s urgent update : Fix actively exploited CVEs in Ivanti products
CVE-2023-22527 poses a significant risk to enterprises and individuals relying on Atlassian Confluence. Understanding and addressing this vulnerability is essential to protecting sensitive data and maintaining the integrity of IT systems. In this blog, we will delve into the details of CVE-2023-22527, its potential impact, and the steps needed to mitigate this threat. Here’s what… Continue reading Exploited! How to fix CVE-2023-22527 in Atlassian Confluence
The cyber security world has been abuzz with the emergence of critical zero-day vulnerabilities in Citrix NetScaler ADC and Gateway. Among these, CVE-2023-6548 and CVE-2023-6549 have garnered significant attention, with the latter of these particularly concerning due to its severity and potential impact. Here’s everything you need to know about CVE-2023-6549, which has also been… Continue reading Zero-day exploited: How to fix CVE-2023-6549 in Citrix products
Update: The login issue has been resolved as of Monday, December 18, 2023. MongoDB is a key player in the database software industry, catering to a vast array of businesses and individual users worldwide. However, this reputation for innovation and reliability faced a challenge when the company encountered a significant security incident. This blog post delves… Continue reading What we know about the MongoDB data breach
With remote work, cloud migration, and reliance on third-party software all playing a part, security teams are facing a multi-directional challenge to protect company data. While vulnerability management processes are growing more mature as we head into 2024 – especially when it comes to automated vulnerability remediation – many organizations continue to struggle with the… Continue reading Automated vulnerability remediation: Insights from SANS, IBM and more
In 2023, security issues have increased in cloud assets, leading to more data breaches involving cloud environments. But, despite the growing threats and attached cyber risk, organizations are undeterred in migrating to the cloud with greater acceleration than ever before. But is the greater exposure to cyber risk matched by organizations taking the steps to… Continue reading What 2022 and 2023 taught us about cloud security
Google Chrome, the near-ubiquitous web browser, has recently faced a critical security challenge, with the high-severity zero-day vulnerability identified as CVE-2023-6345 having been discovered, posing a significant threat to users worldwide. Here’s what you need to know: What is CVE-2023-6345? CVE-2023-6345 is a severe security flaw in Google Chrome, categorized as an integer overflow bug… Continue reading Mitigating CVE-2023-6345 in Google Chrome
